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Link and channel measurement: A simple mechanism for capturing and re pla ying 

wireless channels 

Glenn Judd, Peter Steenkiste 

August 2005 Proceeding of the 2005 ACM SIGCOMM workshop on Experimental 
approaches to wireless network design and analysis E-WIND '05 

Publisher: ACM Press 

Full text available: ^| pdf (6.06 MB ) Additional Information: full citation , abstract , referenc es, index terms 

Physical layer wireless network emulation has the potential to be a powerful experimental 
tool. An important challenge in physical emulation, and traditional simulation, is to 
accurately model the wireless channel. In this paper we examine the possibility of using 
on-card signal strength measurements to capture wireless channel traces. A key 
advantage of this approach is the simplicity and ubiquity with which these measurements 
can be obtained since virtually all wireless devices provide the req ... 

Keywords: channel capture, emulation, wireless 



A survey on peer-to-peer key mana g ement for mobile ad hoc networks | 
Johann Van Der Merwe, Dawoud Dawoud, Stephen McDonald 
April 2007 ACM Computing Surveys (CSUR), volume 39 issue l 

Publisher: ACM Press 

Full text available: ^| pdf(872.71 KB) Additional Information: full citation , abstract , references , index terms 

The article reviews the most popular peer-to-peer key management protocols for mobile 
ad hoc networks (MANETs). The protocols are subdivided into groups based on their design 
strategy or main characteristic. The article discusses and provides comments on the 
strategy of each group separately. The discussions give insight into open research 
problems in the area of pairwise key management. 



Keywords: Mobile ad hoc networks, pairwise key management, peer-to-peer key 
management, security 
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4 The BUCKY ob j ect-relational benchmark Q 
Michael J. Carey, David J. DeWitt, Jeffrey F. Naughton, Mohammad Asgarian, Paul Brown, 
Johannes E. Gehrke, Dhaval N. Shah 

June 1997 ACM SIGMOD Record , Proceedings of the 1997 ACM SIGMOD international 

conference on Management of data SIGMOD '97, volume 26 issue 2 
Publisher: ACM Press 

Full text available: fB pdf(1.48 MB) Additional Information: f ull cita tion, abstract, references , citings, index 
^ terms 

According to various trade journals and corporate marketing machines, we are now on the 
verge of a revolution— the object-relational database revolution. Since we believe that no 
one should face a revolution without appropriate armaments, this paper presents BUCKY, 
a new benchmark for object-relational database systems. BUCKY is a query-oriented 
benchmark that tests many of the key features offered by object-relational systems, 
including row types and inheritance, references and path e ... 




5 SHARP: an architecture for secure resource peerin g 

Yun Fu, Jeffrey Chase, Brent Chun, Stephen Schwab, Amin Vahdat 

October 2003 ACM SIGOPS Operating Systems Review , Proceedings of the nineteenth 
ACM symposium on Operating systems principles SOSP '03, volume 37 issue 

5 

Publisher: ACM Press 

Full text available: « pdf( 339.51 KB ) Additional Information: full citation , abstract, references , citings, index 

terms 

This paper presents Sharp, a framework for secure distributed resource management in an 
Internet-scale computing infrastructure. The cornerstone of Sharp is a construct to 
represent cryptographically protected resource <it>claims</it> — promises or rights to 
control resources for designated time intervals— together with secure mechanisms to 
subdivide and delegate claims across a network of resource managers. These mechanisms 
enable flexible <it>resource peeri ... 

Keywords: peer-to-peer, resource allocation, resource peering 




6 ROFL: routing on flat labels 

<§v Matthew Caesar, Tyson Condie, Jayanthkumar Kannan, Karthik Lakshminarayanan, Ion 
v Stoica 

August 2006 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2006 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '06, volume 36 issue 4 

Publisher: ACM Press 

Full text available: Qpdf(315.75 KB) Additional Information: full citation , abstract , references , index terms 

It is accepted wisdom that the current Internet architecture conflates network locations 
and host identities, but there is no agreement on how a future architecture should 
distinguish the two. One could sidestep this quandary by routing directly on host identities 
themselves, and eliminating the need for network-layer protocols to include any mention 
of network location. The key to achieving this is the ability to route on flat labels. In this 
paper we take an initial stab at this challenge, pro ... 

Keywords: internet architecture, naming, routing 
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FIRE: flexible Intra-AS routing environment 

Craig Partridge, Alex C. Snoeren, W. Timothy Strayer, Beverly Schwartz, Matthew Condell, 
Isidro Castineyra 

August 2000 ACM SIGCOMM Computer Communication Review , Proceedings of the 
conference on Applications, Technologies, Architectures, and Protocols 
for Computer Communication SIGCOMM '00, volume 30 issue 4 

Publisher: ACM Press 

Full text available: f|pdf(1 07.75 KB) Additional Information: full citation , abstract , references , citings, index 
. my ■ terms 

Current routing protocols are monolithic, specifying the algorithm used to construct 
forwarding tables, the metric used by the algorithm (generally some form of hop-count), 
and the protocol used to distribute these metrics as an integrated package. The Flexible 
Intra-AS Routing Environment (FIRE) is a link-state, intra-domain routing protocol that 
decouples these components. FIRE supports run-time-pro- grammable algorithms and 
metrics over a secure link-state distribution protocol. By allow ... 

Cryptography a nd data securit y 
Dorothy Elizabeth Robling Denning 
January 1982 Book 

Publisher: Addison-Wesley Longman Publishing Co., Inc. 

Full text available- IS pdf(1 9 47 MB) AdditionaI Information: full c itation , abstract, r eferenc es, cited by. index 
■ ' terms 

From the Preface (See Front Matter for full Preface) 

Electronic computers have evolved from exiguous experimental enterprises in the 1940s to 
prolific practical data processing systems in the 1980s. As we have come to rely on these 
systems to process and store data, we have also come to wonder about their ability to 
protect valuable data. 

Data security is the science and study of methods of protecting data in computer and 
communication systems from unauthorized disclosure ... 

On interdomain routin g security and pretty secure BGP (psBGP) 
P.C. van Oorschot, Tao Wan, Evangelos Kranakis 

July 2007 ACM Transactions on Information and System Security (TISSEC), volume 10 

Issue 3 

Publisher: ACM Press 

Full text available: ^ pdf( 469.49 KB ) Additional Information: full citation , abstract , references , index terms 

It is well known that the Border Gateway Protocol (BGP), the IETF standard interdomain 
routing protocol, is vulnerable to a variety of attacks, and that a single misconfigured or 
malicious BGP speaker could result in large-scale service disruption. In this paper, we 
present Pretty Secure BGP (psBGP)-a proposal for securing BGP, including an 
architectural overview, design details for significant aspects, and preliminary security and 
operational analysis. psBGP differs from other secur ... 

Keywords: BGP, authentication, certificates, interdomain routing, public-key 
infrastructure, secure routing protocols, trust 
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Jiejun Kong, Xiaoyan Hong 

June 2003 Proceedings of the 4th ACM international symposium on Mobile ad hoc 
networking & computing MobiHoc '03 

Publisher: ACM Press 

Full text available- fi3 pdf(236 79 KB) AcJc M' ona l Information: full citation , abstract , references , citings , index 
" TZJ-**-* : terms 

In hostile environments, the enemy can launch traffic analysis against interceptable 
routing information embedded in routing messages and data packets. Allowing adversaries 
to trace network routes and infer the motion pattern of nodes at the end of those routes 
may pose a serious threat to covert operations. We propose ANODR, an anonymous on- 
demand routing protocol for mobile ad hoc networks deployed in hostile environments. We 
address two closely related problems: For route anonymity, AN ... 

Keywords: anonymity, broadcast, mobile ad-hoc network, on-demand routing, 
pseudonymity, trapdoor, untraceability 



11 Peer to peer networks: Tarzan: a peer-to-peer anonymizin g n etwork layer 
yga^ Michael J. Freedman, Robert Morris 

November 2002 Proceedings of the 9th ACM conference on Computer and 
communications security CCS '02 

Publisher: ACM Press 

Full text available- 1 5 *! odf(242 72 KB) Additiona l Information: full citation , abstract , references , citings, index 
: terms 

Tarzan is a peer-to-peer anonymous IP network overlay. Because it provides IP service, 
Tarzan is general-purpose and transparent to applications. Organized as a decentralized 
peer-to-peer overlay, Tarzan is fault-tolerant, highly scalable, and easy to manage.Tarzan 
achieves its anonymity with layered encryption and multi-hop routing, much like a 
Chaumian mix. A message initiator chooses a path of peers pseudo-randomly through a 
restricted topology in a way that adversaries cannot easily influenc ... 

Keywords: IP tunnels, anonymity, cover traffic, distributed trust, mix-nets, overlay 
networks, peer-to-peer 



12 Distributed systems of little things: Persistent personal names for globally connected 
mobile devices 

Bryan Ford, Jacob Strauss, Chris Lesniewski-Laas, Sean Rhea, Frans Kaashoek, Robert Morris 
November 2006 Proceedings of the 7th symposium on Operating systems design and 

implementation OSDI '06 
Publisher: USENIX Association 

Full text available: ^| pdf(1.16 MB) Additional Information: full citation , abstract , references 

The Unmanaged Internet Architecture (UIA) provides zero-configuration connectivity 
among mobile devices through personal names. Users assign personal names through an 
ad hoc device introduction process requiring no central allocation. Once assigned, names 
bind securely to the global identities of their target devices independent of network 
location. Each user manages one namespace, shared among all the user's devices and 
always available on each device. Users can also name other ... 

13 Data persistence and binding: Anatomy of the ADO.NET entity framework 
Atul Adya, Jose A. Blakeley, Sergey Melnik, S. Muralidhar 

June 2007 Proceedings of the 2007 ACM SIGMOD international conference on 
Management of data SIGMOD '07 

Publisher: ACM Press 
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Full text available: ^| pdf(732.94 KB) Additional Information: full citation , abstract , references , index terms 

Traditional client-server applications relegate query and persistence operations on their 
data to database systems. The database system operates on data in the form of rows and 
tables, while the application operates on data in terms of higher-level programming 
language constructs (classes, structures etc.). The impedance mismatch in the data 
manipulation services between the application and the database tier was problematic even 
in traditional systems. With the advent of service-orient ... 

Keywords: ADO.NET, conceptual modeling, data programming 



14 Privacy throu gh pseudonymity in user-adaptive sy stems 
^ Alfred Kobsa, Jorg Schreck 

V May 2003 ACM Transactions on Internet Technology (TOIT), volume 3 issue 2 
Publisher: ACM Press 

Full text available- *f?lpdf(881 69 KB) Additional Information: full citation , abstract , references , citin gs, index 
l^j ■ terms , review 

User-adaptive applications cater to the needs of each individual computer user, taking for 
example users' interests, level of expertise, preferences, perceptual and motoric abilities, 
and the usage environment into account. Central user modeling servers collect and 
process the information about users that different user-adaptive systems require to 
personalize their user interaction.Adaptive systems are generally better able to cater to 
users the more data their user modeling systems collect and ... 

Keywords: Chaum mix, KQML, User modeling, access control, anonymity, encryption, 
personal information, personalization, privacy, pseudonymity, reference model, secrecy, 
security, user-adaptive systems 



15 Multi-agent systems and social behavior: A user-centric anonymous authorisation 
framework in e-commerce environment 

Richard Au, Harikrishna Vasanta, Kim-Kwang Raymond Choo, Mark Looi 
March 2004 Proceedings of the 6th international conference on Electronic commerce 

ICEC 04 
Publisher: ACM Press 

Full text available: ^ pdf(291.Q6 KB) Additional Information: full citation , abstract , references , citing s 

A novel user-centric authorisation framework suitable for e-commerce in an open 
environment is proposed. The credential-based approach allows a user to gain access 
rights anonymously from various service providers who may not have pre-existing 
relationships. Trust establishment is achieved by making use of referrals from external 
third parties in the form of Anonymous Attribute Certificates. The concepts of One-task 
Authorisation Key and Binding Signature are proposed to fac ... 

16 Semantic constraints for trust transitivity 
Audun Josang, Simon Pope 

January 2005 Proceedings of the 2nd Asia-Pacific conference on Conceptual 
modelling - Volume 43 APCCM '05 

Publisher: Australian Computer Society, Inc. 

Full text available- * a pdf(232 49 KB) Additional Information: full citation , abstract , references , citing s, index 
" 1 : terms 

To describe the concept of transitive trust in a simplified way, assume that agent A trusts 
agent B, and that agent B trusts agent C, then by transitivity, agent A trusts agent C. 
Trust transitivity manifests itself in various forms during real life human interaction, but 
can be challenging to concisely model in a formal way. In this paper we describe principles 
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for expressing and analysing transitive trust networks, and define requirements for their 
val ... 

17 Be g, borrow , or steal: COMBINE: leverag ing the power of wireless peers throu gh 
collaborative downloading 

Ganesh Ananthanarayanan, Venkata N. Padmanabhan, Lenin Ravindranath, Chandramohan 
A. Thekkath 

June 2007 Proceedings of the 5th international conference on Mobile systems, 

applications and services MobiSys '07 
Publisher: ACM Press 

Full text available: ^| pdf(358.45 KB) Additional Information: full citation , abstract , references , index terms 

Mobile devices are increasingly equipped with multiple network interfaces: Wireless Local 
Area Network (WLAN) interfaces for local connectivity and Wireless Wide Area Network 
(WWAN) interfaces for wide-area connectivity. The WWAN typically provides much wider 
coverage but much lower speeds than the WLAN. To address this dichotomy, we present 
COMBINE, a system for collaborative downloading wherein devices that are within WLAN 
range pool together their WWAN links, significantly increasing the e ... 

Keywords: accounting, battery, collaborative, multi-homed, power 





18 Nondeterministic Queries in a Relational Grid Information Service 
Peter A. Dinda, Dong Lu 

November 2003 Proceedings of the 2003 ACM/IEEE conference on Supercomputing SC 
Publisher: IEEE Computer Society 

Full text available: ^ pdf(398.17 KB ) Additional Information: full citation , abstract , citings 

A Grid Information Service (GIS) stores information about the resources of a distributed 
computing environment and answers questions about it. We are developing RGIS, a GIS 
system based on the relational data model. RGIS users can write SQL queries that search 
for complex compositions of resources that meet collective requirements. Executing these 
queries can be very expensive, however. In response, we introduce the nondeterministic 
query, an extension to the SELECT statement, which allows the u ... 

19 Trustworthy 100-year di g ital ob j ects: Evidence after every witness is dead 
Henry M. Gladney 

July 2004 ACM Transactions on Information Systems (TOIS), volume 22 issue 3 
Publisher: ACM Press 

Full text available: IB pdf (1.24MB) Additional Information: full citation , abstract , references , citings, index 

terms 

In ancient times, wax seals impressed with signet rings were affixed to documents as 
evidence of their authenticity. A digital counterpart is a message authentication code fixed 
firmly to each important document. If a digital object is sealed together with its own audit 
trail, each user can examine this evidence to decide whether to trust the content— no 
matter how distant this user is in time, space, and social affiliation from the document's 
source. We propose an architecture and design that a ... 

20 SybilGuard: defending against sybil attacks via social networks 
Haifeng Yu, Michael Kaminsky, Phillip B. Gibbons, Abraham Flaxman 

August 2006 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2006 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '06, volume 36 issue 4 
Publisher: ACM Press 
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Full text available: |g[ pdf(372.47 KB ) Additional Information: full citation , abstract , references , cited b y. index 

terms 

Peer-to-peer and other decentralized ; distributed systems are known to be particularly 
vulnerable to sybil attacks. In a sybil attack,a malicious user obtains multiple fake 
identities and pretends to be multiple, distinct nodes in the system. By controlling a large 
fraction of the nodes in the system, the malicious user is able to "out vote" the honest 
users in collaborative tasks such as Byzantine failure defenses. This paper presents 
SybilGuard, a novel protocol for limiting the co ... 

Keywords: social networks, sybil attack, sybil identity, sybilGuard 
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21 A ccountin g and mana g ement: G eneric ac countin g config uration management fo r 
^ heterogeneous mobile networks 

^ Frank Eyermann, Peter Racz, Burkhard Stiller, Christian Schaefer, Thomas Walter 

September 2005 Proceedings of the 3rd ACM international workshop on Wireless 
mobile applications and services on WLAN hotspots WMASH '05 
Publisher: ACM Press 



Full text available: pdf(252.81 KB) 



Additional Information: full citation , abstract , references , index terms . 
review 



Accounting performed by network and service providers covers the tasks of determining, 
collecting, and evaluating information on the service usage of their customers. This 
information forms the basis of the subsequent charging process. For performing these 
tasks in case of heterogeneous mobile networks a generic configuration management, 
specifically tailored at the provisioning of various Internet services is needed. This work 
defines a role model covering all participating entities of a distri ... 

Keywords: accounting, accounting architecture, charging, hand-over, mobile network 
operators, roaming, single bill 



22 Securin g IPv6 neighbor and ro uter discovery | 
Jari Arkko, Tuomas Aura, James Kempf, Vesa-Matti Mantyla, Pekka Nikander, Michael Roe 
September 2002 Proceedings of the 1st ACM workshop on Wireless security WiSE '02 
Publisher: ACM Press 

Full text available' fiQ odfd 1 3 58 KB) Additional Information: full citation , abstract , references , cited b y. index 

terms 

When IPv6 Neighbor and Router Discovery functions were defined, it was assumed that 
the local link would consist of mutually trusting nodes. However, the recent developments 
in public wireless networks, such as WLANs, have radically changed the situation. The 
nodes on a local link cannot necessarily trust each other any more, but they must become 
mutually suspicious even when the nodes have completed an authentication exchange with 
the network. This creates a number of operational difficulties a ... 

Keywords: autoconfiguration, detection, duplicate address, identity-based cryptosystems, 
neighbor discovery, router discovery 
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A data-oriented (and beyond) network architecture 

Teemu Koponen, Mohit Chawla, Byung-Gon Chun, Andrey Ermolinskiy, Kye Hyun Kim, Scott 
Shenker, Ion Stoica 

August 2007 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2007 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '07, volume 37 issue 4 

Publisher: ACM Press 

Full text available: |g pdf(841 .38 KB) Additional Information: full citation , abstract , references , index terms 

The Internet has evolved greatly from its original incarnation. For instance, the vast 
majority of current Internet usage is data retrieval and service access, whereas the 
architecture was designed around host-to-host applications such as telnet and ftp. 
Moreover, the original Internet was a purely transparent carrier of packets, but now the 
various network stakeholders use middleboxes to improve security and accelerate 
applications. To adapt to these changes, we propose the Data-Oriented Net ... 

Keywords: data, internet architecture, middleboxes, name resolution, naming 



24 Compariso n of acc ess methods for time-evolving data 
Betty Salzberg, Vassilis J. Tsotras 

June 1999 ACM Computing Surveys (CSUR), volume 31 issue 2 
Publisher: ACM Press 

Full text available* ffl pdf(529 53 KB) Additional Information: full citation , abstract , references , citings, index 
^ ' terms 

This paper compares different indexing techniques proposed for supporting efficient access 
to temporal data. The comparison is based on a collection of important performance 
criteria, including the space consumed, update processing, and query time for 
representative queries. The comparison is based on worst-case analysis, hence no 
assumptions on data distribution or query frequencies are made. When a number of 
methods have the same asymptotic worst-case behavior, features in the methods tha ... 

Keywords: I/O performance, access methods, structures, temporal databases 



25 Encr y ption and Secure Computer Networks Q 
Gerald J. Popek, Charles S. Kline 

December 1979 ACM Computing Surveys (CSUR), volume u issue 4 
Publisher: ACM Press 

Full text available: ^ pdf(2.5Q MB ) Additional Information: full citation , references , citings, index terms 




26 Anonymit y s ystems & formal method: A /c-anonymous communication protocol for 
overlay networks 

Pan Wang, Peng Ning, Douglas S. Reeves 

March 2007 Proceedings of the 2nd ACM symposium on Information, computer and 
communications security ASIACCS '07 

Publisher: ACM Press 

Full text available: ^ pdf (456.Q1 KB) Additional Information: full citation , abstract , references , index terms 

Anonymity is increasingly important for network applications concerning about censorship 
and privacy. The existing anonymous communication protocols generally stem from 
mixnet and DC-net. They either cannot provide provable anonymity or suffer from 
transmission collision. In this paper, we introduce a novel approach which takes advantage 
of hierarchical ring structure and mix technique. This proposed protocol is collision free 
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and provides provable /c-anonymity for both the sender and t ... 
Keywords: anonymity, overlay networks, security 



27 Ad hoc networks and RFID (work in progress): Ke y distribution and update for secure Q 
inter-group multicast communication 
Weichao Wang, Bharat Bhargava 

November 2005 Proceedings of the 3rd ACM workshop on Security of ad hoc and 
sensor networks SASN '05 

Publisher: ACM Press 

Full text available: ^SC|pdf( 191.28 KB ) Additional Information: full citation , abstract , references , index terms 

Group communication has become an important component in wireless networks. In this 
paper, we focus on the environments in which multiple groups coexist in the system, and 
both intra and inter group multicast traffic must be protected by secret keys. We propose 
a mechanism that integrates polynomials with flat tables to achieve personal key share 
distribution and efficient key refreshment during group changes. The proposed mechanism 
distributes keys via true broadcast. The contributions of the r ... 

Keywords: inter-group communication, key distribution and update, security 




28 S pecial feature: Report on a workin g session on security in wireless ad hoc networks Q 
Levente Buttyan, Jean-Pierre Hubaux 

January 2003 ACM SIGMOBILE Mobile Computing and Communications Review, Volume 

7 Issue 1 

Publisher: ACM Press 

Full text available: ^ pdf ( 2>50 MB) Additional Information: full citation, references , citings 




29 Security in mobile communications: challen g es and opportunities 
Audun J0sang, Gunnar Sanderud 

January 2003 Proceedings of the Australasian information security workshop 

conference on ACSW frontiers 2003 - Volume 21 ACSW Frontiers '03 

Publisher: Australian Computer Society, Inc. 



Full text available: ^ pdfd 17.04 KB ) 



Additional Information: full citation , abstract , references , citin gs, index 
terms 



The nature of mobile communication, characterised for example by terminals having poor 
user interface and limited processing capacity, as well as complex combination of network 
protocols, makes the design of security solutions particularly challenging. This paper 
discusses some of the difficulties system architects are faced with as well as some 
advantages mobile networks offer when designing security solutions for mobile 
communication. 

Keywords: heterogeneous networks, mobile devices, security, usability 



30 The desi g n and implementation of a private messa g e service for mobile computers Q 
David A. Cooper, Kenneth P. Birman 
August 1995 Wireless Networks, volume l issue 3 
Publisher: Kluwer Academic Publishers 

Full text available: ^ pdf(1.35 MB) Additional Information: full citation , abstract , references 
Even as wireless networks create the potential for access to information from mobile 
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platforms, they pose a problem for privacy. In order to retrieve messages, users must 
periodically poll the network. The information that the user must give to the network could 
potentially be used to track that user. However, the movements of the user can also be 
used to hide the user's location if the protocols for sending and retrieving messages are 
carefully designed. We have developed a replicated memo ... 

3 1 Privacy-enhanced, attac k-resilient access control in pervasive computing 
environments with optional context authentication capability 
Kui Ren, Wenjing Lou 

January 2007 Mobile Networks and Applications, volume 12 issue 1 
Publisher: ACM Press 

Full text available: ^pdf( 413.79 KB) Additional Information: full citation, abstract, references , i ndex terms 

In pervasive computing environments (PCEs), privacy and security are two important but 
contradictory objectives. Users enjoy services provided in PCEs only after their privacy 
issues being sufficiently addressed. That is, users could not be tracked down for wherever 
they are and whatever they are doing. However, service providers always want to 
authenticate the users and make sure they are accessing only authorized services in a 
legitimate way. In PCEs, such user authentication may include conte ... 

Keywords: access control, context authentication, pervasive computing environment 
(PCE), privacy, security 




32 Special section on se nsor net work technolo g y & sensor data mana g ement (part II): A Q 
secure hierarchical model for sensor network 
Malik Tubaishat, Jian Yin, Biswajit Panja, Sanjay Madria 
March 2004 ACM SIGMOD Record, volume 33 issue 1 
Publisher: ACM Press 

Full text available: ^ pdf(81.48 KB) Additional Information: full citation , abstract , references 

In a distributed sensor network, large number of sensors deployed which communicate 
among themselves to self-organize a wireless ad hoc network. We propose an energy- 
efficient level-based hierarchical system. We compromise between the energy 
consumption and shortest path route by utilizing number of neighbors (NBR) of a sensor 
and its level in the hierarchical clustering. In addition, we design a Secure Routing Protocol 
for Sensor Networks (SRPSN) to safeguard the data packet passing on t ... 



33 Web technologi es: Decentralized authorization and data security in web content 
delivery 

Danfeng Yao, Yunhua Koglin, Elisa Bertino, Roberto Tamassia 

March 2007 Proceedings of the 2007 ACM symposium on Applied computing SAC '07 
Publisher: ACM Press 

Full text available: ^| pdf(204.60 KB) Additional information: full citation , abstract , references , index terms 

The fast development of web services, or more broadly, service-oriented architectures 
(SOAs), has prompted more organizations to move contents and applications out to the 
Web. Softwares on the web allow one to enjoy a variety of services, for example 
translating texts into other languages and converting a document from one format to 
another. In this paper, we address the problem of maintaining data integrity and 
confidentiality in web content delivery when dynamic content modifications are ne ... 

Keywords: authorization, content delivery networks, data integrity, web 
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credential system j 
Jan Camenisch, Els Van Herreweghen 

November 2002 Proceedings of the 9th ACM conference on Computer and 

communications security CCS '02 
Publisher: ACM Press 

Full text available: f E)pdf(1.09 MB) Additional Information: fuHcitation, abstract, references, citings, Index 

terms 

Anonymous credential systems [8, 9, 12, 24] allow anonymous yet authenticated and 
accountable transactions between users and service providers. As such, they represent a 
powerful technique for protecting users' privacy when conducting Internet transactions. In 
this paper, we describe the design and implementation of an anonymous credential system 
based on the protocols developed by [6]. The system is based on new high-level primitives 
and interfaces allowing for easy integration into access cont ... 

Keywords: anonymous credential systems, cryptographic protocols, privacy 



35 Tec hnolo gies for repository inter o peration and ac cess control 

# Shirley Browne, Jack Dongarra, Jeff Horner, Paul McMahan, Scott Wells 
May 1998 Proceedings of the third ACM conference on Digital libraries DL '98 
Publisher: ACM Press 

Full text available: ^ pdfd.14 MB) Additional Information: full citation , references , citing s , index terms 



36 A taxonom y of Da t a Gri ds for distr i b u ted data sharin g, mana g ement , and process ing Q 
Srikumar Venugopal, Rajkumar Buyya, Kotagiri Ramamohanarao 
June 2006 ACM Computing Surveys (CSUR), volume 38 issue l 
Publisher: ACM Press 

Full text available: ^pdf(1.70 MB) Additional Information: full citation , abstract , references , index terms 

Data Grids have been adopted as the next generation platform by many scientific 
communities that need to share, access, transport, process, and manage large data 
collections distributed worldwide. They combine high-end computing technologies with 
high-performance networking and wide-area storage management techniques. In this 
article, we discuss the key concepts behind Data Grids and compare them with other data 
sharing and distribution paradigms such as content delivery networks, peer-to-peer n ... 

Keywords: Grid computing, data-intensive applications, replica management, virtual 
organizations 




37 Key management: Fully self-organized peer-to-peer key mana g ement for mobile ad Q 
hoc networks 

Johann van der Merwe, Dawoud Dawoud, Stephen McDonald 

September 2005 Proceedings of the 4th ACM workshop on Wireless security WiSe '05 
Publisher: ACM Press 

Full text available: ^ pdf(237.33 KB) Additional Information: full citation , abstract , references , index terms 

Mobile ad hoc networks (MANETs) offer communication over a shared wireless channel 
without any pre-existing infrastructure. Forming peer-to-peer security associations in 
MANETs is more challenging than in conventional networks due to the lack of central 
authority. The main contribution of this paper is a low complexity key management 
scheme that is suitable for fully self-organized MANETs. The proposed peer-to-peer key 
management scheme uses subordinate public keys and crypto-based identifiers t ... 
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Keywords: Mobile IPv6, crypto-based identifiers, identity-based cryptography, mobile ad 
hoc networks, network level key distribution, network security, pairwise key management, 
peer-to-peer key management, self-organization, subordinate public keys 



38 Decentralized user authentication in a global file system ! 
^ Michael Kaminsky, George Savvides, David Mazieres, M. Frans Kaashoek 
N/ October 2003 ACM SIGOPS Operating Systems Review , Proceedings of the nineteenth 
ACM symposium on Operating systems principles SOSP '03, volume 37 issue 

5 

Publisher: ACM Press 

Full text available- fi3 pdf(144 43 KB) Additional Information: fyJLoMtion, abstra ct, references, citings, index 
• m * terms 

The challenge for user authentication in a global file system is allowing people to grant 
access to specific users and groups in remote administrative domains, without assuming 
any kind of pre-existing administrative relationship. The traditional approach to user 
authentication across administrative domains is for users to prove their identities through 
a chain of certificates. Certificates allow for general forms of delegation, but they often 
require more infrastructure than is necessary to sup ... 

Keywords: ACL, SFS, authentication, authorization, credentials, file system, groups, 
users 



39 A framework for call gra ph construction al g orithms 

David Grove, Craig Chambers 
^ November 2001 ACM Transactions on Programming Languages and Systems 
(TOPLAS), Volume 23 Issue 6 

Publisher: ACM Press 

Full text available- f£\ pdf(136MB) Additional Information: full citation , abstract , references , citings, index 
U 6 3V 13 terms 

A large number of call graph construction algorithms for object-oriented and functional 
languages have been proposed, each embodying different tradeoffs between analysis cost 
and call graph precision. In this article we present a unifying framework for understanding 
call graph construction algorithms and an empirical comparison of a representative set of 
algorithms. We first present a general parameterized algorithm that encompasses many 
well-known and novel call graph construction algorithms. W ... 

Keywords: Call graph construction, control flow analysis, interprocedural analysis 



40 Pa pers: On the validity of digital signatures 
Jianying Zhou, Robert Deng 

April 2000 ACM SIGCOMM Computer Communication Review, volume 30 issue 2 
Publisher: ACM Press 

Full text available: ^ pdf(586.65 KB) Additional Information: full citation , abstract , references 

An important feature of digital signatures is to serve as non-repudiation evidence. To be 
eligible as non-repudiation evidence, a digital signature on an electronic document should 
remain valid until its expiry date which is specified by some non-repudiation policy. As 
signature keys may be compromised and the validity of signatures may become 
questionable, additional security mechanisms need to be imposed on digital signatures. 
This paper examines the mechanisms for maintaining the validity of ... 

Keywords: digital signature, non-repudiation, secure electronic commerce 
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41 Sel f -org aniz e d netw ork-la yer securit y in mobile ad hoc networks 
Hao Yang, Xiaoqiao Meng, Songwu Lu 

September 2002 Proceedings of the 1st ACM workshop on Wireless security WiSE '02 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , cited by , index 
terms 



Full text available: ||pdf( 226.72 KB ) 



Protecting the network layer in a mobile ad hoc network is an important research topic in 
wireless security. This paper describes our unified network-layer security solution in ad hoc 
networks, which protects both routing and packet forwarding functionalities in the context 
of the AODV protocol. To address the unique characteristics of ad hoc networks, we take a 
self-organized approach by exploiting full localized design, without assuming any a priori 
trust or secret association between n ... 

Keywords: mobile ad hoc networks, self-organized security 



42 SKMA: a key mana g ement architecture for SCADA systems 
Robert Dawson, Colin Boyd, Ed Dawson, Juan Manuel Gonzalez Nieto 
January 2006 Proceedings of the 2006 Australasian workshops on Grid computing 
and e-research - Volume 54 ACSW Frontiers '06 

Publisher: Australian Computer Society, Inc. 

Full text available: ^ pdf( 250.98 KB ) Additional Information: full citation , abstract , references , index terms 

Supervisory Control And Data Acquisition (SCADA) systems are widely used in the 
management of critical infrastructure such as electricity and water distribution systems. 
Currently there is little understanding of how to best protect SCADA systems from 
malicious attacks. We review the constraints and requirements for SCADA security and 
propose a suitable architecture (SKMA) for secure SCADA communications. The 
architecture includes a proposed key management protocol (SKMP). We compare the 
archite ... 

Keywords: SCADA security, key distribution center (KDC), key establishment protocols, 
key management, secure protocol 
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Venkata K. Pingali, Sally A. McKee, Wilson C. Hseih, John B. Carter 

June 2002 Proceedings of the 16th international conference on Supercomputing ICS 
•02 

Publisher: ACM Press 

Full text available* f|| pdf(251 90 KB) Additional Information: full citation , abstract , references , citings, index 
' ™ ' terms 

Data access costs contribute significantly to the execution time of applications with 
complex data structures. As the latency of memory accesses becomes high relative to 
processor cycle times, application performance is increasingly limited by memory 
performance. In some situations it may be reasonable to trade increased computation 
costs for reduced memory costs. The contributions of this paper are three-fold: we provide 
a detailed analysis of the memory performance of a set of seven, memory-in ... 

Keywords: data structures, memory performance, optimization 



44 Gen eral stora ge pro t e c tion t echniques: Secur i n g d i s t r i buted stora g e: cha ll en g es . 
A techniques, and systems 
^ Vishal Kher, Yongdae Kim 

November 2005 Proceedings of the 2005 ACM workshop on Storage security and 
survivability StorageSS '05 

Publisher: ACM Press 

Full text available: ^||pdf(294.61 KB ) Additional Information: full cita t ion , a bst ract, referen c e s , index terms 

The rapid increase of sensitive data and the growing number of government regulations 
that require longterm data retention and protection have forced enterprises to pay serious 
attention to storage security. In this paper, we discuss important security issues related to 
storage and present a comprehensive survey of the security services provided by the 
existing storage systems. We cover a broad range of the storage security literature, 
present a critical review of the existing solutions, compare ... 

Keywords: authorization, confidentiality, integrity, intrusion detection, privacy 



45 Secure wireless protocols: An authentication framework for hierarchical ad hoc 
sensor networks 
Mathias Bohge, Wade Trappe 

September 2003 Proceedings of the 2nd ACM workshop on Wireless security WiSe '03 
Publisher: ACM Press 

Full text available: Qpdf(263.78 KB) Additional Information: full citation , abstract , references , index terms 

Recent results indicate scalability problems for flat ad hoc networks. To address the issue 
of scalability, self-organizing hierarchical ad hoc architectures are being investigated. In 
this paper, we explore the task of providing data and entity authentication for hierarchical 
ad hoc sensor networks. Our sensor network consists of three tiers of devices with varying 
levels of computational and communication capabilities. Our lowest tier consists of 
compute-constrained sensors that are unable to ... 

Keywords: TESU\, ad hoc networks, authentication, handoff 
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46 Access path support for referential integrity in SQL2 Q 
Theo Harder, Joachim Reinert 

August 1996 The VLDB Journal — The International Journal on Very Large Data 

Bases, Volume 5 Issue 3 
Publisher: Springer-Verlag New York, Inc. 
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Full text available: ^] pdf(321. 13 KB) Additional Information: full citation , abstract, citings, index terms 

The relational model of data incorporates fundamental assertions for entity integrity and 
referential integrity. Recently, these so-called relational invariants were more precisely 
specified by the new SQL2 standard. Accordingly, they have to be guaranteed by a 
relational DBMS to its users and, therefore, all issues of semantics and implementation 
became very important, The specification of referential integrity embodies quite a number 
of complications including the MATCH clause and a collection ... 

Keywords: Access path support, MATCH clause, Referential integrity, Relational 
databases, SQL2 



47 Supportin g mult i -user multi-applet workspaces in CBE Q 
Jang Ho Lee, Atul Prakash, Trent Jaeger, Gwobaw Wu 

November 1996 Proceedings of the 1996 ACM conference on Computer supported 

cooperative work CSCW '96 
Publisher: ACM Press 

Full text available: ^|pdf(1.47 MB) Additional Information: full citation , references , citin gs, ind ex terms 




Keywords: CSCW toolkits, DistView, Web-based collaboration, access control, group 
communication, groupware, shared electronic workspaces 



48 Extended abstracts: Au thentication on the edge: distributed authentication for a 
global open wi-fi network 

Nathanael A. Thompson, Petros Zerfos, Haiyun Luo, Jatinder Pal Singh, Zuoning Yin 
September 2007 Proceedings of the 13th annual ACM international conference on 

Mobile computing and networking MobiCom '07 
Publisher: ACM Press 

Full text available: ^ pdf(295.06 KB) Additional Information: full c ita ti on , abstract, references, index terms 

A global-scale low cost outdoor Internet access infrastructure is finally attainable. 
Emerging projects are leveraging the proliferation of private Wi-Fi networks to build a 
global-scale ubiquitous access infrastructure from autonomous, independently owned 
Internet connections at homes and other private properties. To ensure the trace ability 
and accountability required by the broadband ISPs and private owners of these Wi-Fi 
networks, reliable authentication and authorization are needed. This ... 




Keywords: EAP-AGE, Wi-Fi networks, authentication, social network 



49 Content delivery in ad hoc networks: Content-aware search of multimedia data in ad Q 
hoc networks 
Bo Yang, AN R. Hurson 

October 2005 Proceedings of the 8th ACM international symposium on Modeling, 
analysis and simulation of wireless and mobile systems MSWiM '05 

Publisher: ACM Press 

Full text available: ^ pdf(314.60 KB) Additional Information: full citation , abstract , references , index terms 

The infrastructure-free and self-organizing nature of wireless ad hoc networks presents 
fundamental challenges to the design of content-based multimedia search algorithms that 
are efficient with respect to search cost and fair across various network setups. In contrast 
to the wealth of research literature on ad hoc routing protocols, few works have 
realistically considered the methods of locating multimedia data sources in a highly 
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dynamic ad hoc network. Moreover, multimedia information retriev ... 
Keywords: ad hoc network, content distribution, multimedia data retrieval 



50 Automatic testin g equivalence verification of spi calculus specifications 
<£v Luca Durante, Riccardo Sisto, Adriano Valenzano 

V April 2003 ACM Transactions on Software Engineering and Methodology (TOSEM), 

Volume 12 Issue 2 

Publisher: ACM Press 

Full text available: ^pdf(829.73 KB) Additional Information: full citation , abstract , references , index terms 

Testing equivalence is a powerful means for expressing the security properties of 
cryptographic protocols, but its formal verification is a difficult task because of the 
quantification over contexts on which it is based. Previous articles have provided insights 
into using theorem-proving for the verification of testing equivalence of spi calculus 
specifications. This article addresses the same verification problem, but uses a state 
exploration approach. The verification technique is based on the ... 

Keywords: Cryptographic protocols, equivalence verification, state space exploration 



51 Automated cross-or g anisational trust establishment on extranets 
Richard Au, Mark Looi, Paul Ashley 

January 2001 Australian Computer Science Communications , Proceedings of the 

workshop on Information technology for virtual enterprises ITVE '01 , 
Proceedings of the workshop on Information technology for virtual 
enterprises ITVE '01, volume 23 issue 6 

Publisher: IEEE Computer Society, IEEE Computer Society Press 

Full text available: f|) pdf(779.60 KB) 

Ml Additional Information: full citation , abstract , references 

^ Publisher Site 

Trust management is an important aspect of information security in an organisation. It 
involves the complexity of relationships among people, computers and the organisational 
system. It becomes even more complex in the virtual enterprise environment where cross- 
organisational activities are involved. This paper presents a new paradigm for establishing 
trust across multiple organisations for external users on extranets. In our approach, the 
authorities of organisations administer their local user ... 

Keywords: extranet, security server, trust agent, trust distribution, trust establishment, 
trust token, web of trust 



52 Automatic spelling correction in scientific and scholarl y text 
Joseph J. Pollock, Antonio Zamora 

April 1984 Communications of the ACM, volume 27 issue 4 
Publisher: ACM Press 

Full text available:^ pdf(901. 06 KB) Additional Information: full citation , references , citings , index terms 
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July 2003 Wireless Networks, volume 9 issue 4 
Publisher: Kluwer Academic Publishers 

Full text available:^) pdf (3.57 MB ) Additional Information: full citation , abstract , references , index terms 

As part of the Lancaster GUIDE II project, we have developed a novel wireless access 
point protocol designed to support the development of next generation mobile context- 
aware applications in our local environs. Once deployed, this architecture will allow 
ordinary citizens secure, accountable and convenient access to a set of tailored 
applications including location, multimedia and context based services, and the public 
Internet. Our architecture utilises packet marking and network level packet ... 

Keywords: authentication, mobile IPv6, public access point, security, wireless Internet 



54 What happened to pastry Q 
Andrew Herbert 

April 2007 ACM SIGOPS Operating Systems Review, volume 41 issue 2 
Publisher: ACM Press 

Full text available:^ pdf(238.96 KB ) Additional Information: full citation , abstr act , r eferences , i ndex terms 

This paper describes how Microsoft Research goes about the process of technology 
transfer, using the experience of transferring the MS Pastry Distributed Hash Table and its 
applications as an example. 
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55 Security issues for wireless ATM networks 
Danai Patiyoot 

January 2002 ACM SIGOPS Operating Systems Review, volume 36 issue l 
Publisher: ACM Press 

Full text available: ^pdf(1.75 MB) Additional Information: full citation , abstract , references , index terms 

To be able to fulfil the need of user in wireless ATM, the system has to acquire features. 
One of the system features for the wireless ATM is functionality especially the security 
aspect. There is so far tittle, if not none, security consideration in the developing of 
wireless ATM standard. Therefore a wide range of features in security functions is in 
consideration. This paper tried to define the features of security in wireless ATM networks 
considering it features from existing fixed ATM netwo ... 




Keywords: security, wireless ATM 



56 Privac y preservation and social issues: A privacy-preserving interdomain audit 
framework 

Adam J. Lee, Parisa Tabriz, Nikita Borisov 

October 2006 Proceedings of the 5th ACM workshop on Privacy in electronic society 
WPES '06 

Publisher: ACM Press 

Full text available: Q pdf(4.55 MB) Additional Information: full citation , abstract , references , index terms 

Recent trends in Internet computing have led to the popularization of many forms of 
virtual organizations. Examples include supply chain management, grid computing, and 
collaborative research environments like PlanetLab. Unfortunately, when it comes to the 
security analysis of these systems, the whole is certainly greater than the sum of its parts. 
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That is, local intrusion detection and audit practices are insufficient for detecting 
distributed attacks such as coordinated network reconnaissance, ... 

Keywords: data obfuscation, distributed audit, logging 



57 Strong accountability for netw ork stora ge 
Aydan R. Yumerefendi, Jeffrey S. Chase 

October 2007 ACM Transactions on Storage (TOS), volume 3 issue 3 
Publisher: ACM 

Full text available: pdf( 620.65 KB) Additional Information: full citation , abstract , references , index terms 

This article presents the design, implementation, and evaluation of CATS, a network 
storage service with strong accountability properties. CATS offers a simple web services 
interface that allows clients to read and write opaque objects of variable size. This 
interface is similar to the one offered by existing commercial Internet storage services. 
CATS extends the functionality of commercial Internet storage services by offering support 
for strong accountability. 

A CATS server annotates ... 

Keywords: Accountable services, accountability, accountable storage 



58 D IM sec urit y a nd authentication: U s able presentation of secure p seudonyms 
^ Katrin Borcea-Pfitzmann, Elke Franz, Andreas Pfitzmann 

>^ November 2005 Proceedings of the 2005 workshop on Digital identity management 
DIM 05 

Publisher: ACM Press 

Full text available ^pdf(202 09 KB) Addit ' onal Information: full citation , abstract , references, citing s, index 

Privacy-Enhancing Identity Management (PIM) enables us-ers to control which personal 
information they provide to their communication partner(s) by partitioning their personal 
information into partial identities for themselves. Since partial identities must not be 
linkable, they cannot share a global name. Therefore, pseudonyms are used as 
identifiers. We discuss in this paper that besides the frequency of their use also the (re) 
presentation of pseudonyms influences the achievable privacy. Particu ... 

Keywords: (un)linkability, digital pseudonyms, mnemonics, names, privacy, usability 



59 Authentication in the Taos operating system 

Edward Wobber, Martin Abadi, Michael Burrows, Butler Lampson 
February 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 1 

Publisher: ACM Press 

Full text available* odfd 88 MB) Additional Information: full citation , abstract , references , citing s, index 

• terms , review 

We describe a design for security in a distributed system and its implementation. In our 
design, applications gain access to security services through a narrow interface. This 
interface provides a notion of identity that includes simple principals, groups, roles, and 
delegations. A new operating system component manages principals, credentials, and 
secure channels. It checks credentials according to the formal rules of a logic of 
authentication. Our implementation is efficient enough to sup ... 

Keywords: cryptography, mathematical logic 
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'93, Volume 27 Issue 5 

Publisher: ACM Press 

Full text available: Hi pdf(1 45 MB) Additional Information: full citation, abstract, references, citings, index 
• im : terms 

We describe a design and implementation of security for a distributed system. In our 
system, applications access security services through a narrow interface. This interface 
provides a notion of identity that includes simple principals, groups, roles, and delegations. 
A new operating system component manages principals, credentials, and secure channels. 
It checks credentials according to the formal rules of a logic of authentication. Our 
implementation is efficient enough to support a substantia ... 
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61 O penDHT: a public DHT service and its uses 

Sean Rhea, Brighten Godfrey, Brad Karp, John Kubiatowicz, Sylvia Ratnasamy, Scott 
Shenker, Ion Stoica, Harlan Yu 

August 2005 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2005 conference on Applications, technologies, architectures, and 
protocols for computer communications SIGCOMM '05, volume 35 issue 4 
Publisher: ACM Press 

Full text available' f" 1 ) pdf{535 74 KB) Add ' t ' onal Information: full citation , abstract , references , citings , index 
. _ . . terms 

Large-scale distributed systems are hard to deploy, and distributed hash tables (DHTs) are 
no exception. To lower the barriers facing DHT-based applications, we have created a 
public DHT service called OpenDHT. Designing a DHT that can be widely shared, both 
among mutually untrusting clients and among a variety of applications, poses two distinct 
challenges. First, there must be adequate control over storage allocation so that greedy or 
malicious clients do not use more than their fair share. Se ... 



Keywords: distributed hash table, peer-to-peer, resource allocation 



62 DNSSEC: a protocol toward securing the internet infrastructure 

Amy Friedlander, Allison Mankin, W. Douglas Maughan, Stephen D. Crocker 
June 2007 Communications of the ACM, volume 50 issue 6 
Publisher: ACM Press 

Full text available: tgl pdfd 91 .64 KB ) ...... ... 4 . , H ; U4 t , . , . 

tsrLi ./™ i-o „™ Additional Information: full citation , abstract , references , index terms 
jg] ntml( ^9.5o Kb) 

DNSSEC is properly understood as a component in an ecology of security protocols and 
measures. 



63 Architecture for Protecting Critical Secrets in Microprocessors 

Ruby B. Lee, Peter C. S. Kwan, John P. McGregor, Jeffrey Dwoskin, Zhenghong Wang 
May 2005 ACM SIGARCH Computer Architecture News , Proceedings of the 32nd 

annual international symposium on Computer Architecture ISCA '05, volume 

33 Issue 2 

Publisher: IEEE Computer Society, ACM Press 
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Full text available: ^) pdf( 143.62 KB ) Additional Information: full citation , abstract , cited by, index terms 

We propose "secret-protected (SP)" architecture to enable secure and convenient 
protection of critical secrets for a given user in an on-line environment. Keys are examples 
of critical secrets, and key protection and management is a fundamental problem I often 
assumed but not solved i underlying the use of cryptographic protection of sensitive files, 
messages, data and programs. SP-processors contain a minimalist set of architectural 
features that can be built into a general-purpose microprocess ... 

64 A secure distribut ed framewor k for achievin g /c-anon y mit y 
Wei Jiang, Chris Clifton 

November 2006 The VLDB Journal — The International Journal on Very Large Data 

Bases, Volume 15 Issue 4 
Publisher: Springer-Verlag New York, Inc. 

Full text available: ^ pdf(990.09 KB) Additional Information: full citation , abstract 

/c-anonymity provides a measure of privacy protection by preventing re-identification of 
data to fewer than a group of k data items. While algorithms exist for producing k- 
anonymous data, the model has been that of a single source wanting to publish data. Due 
to privacy issues, it is common that data from different sites cannot be shared directly. 
Therefore, this paper presents a two-party framework along with an application that 
generates /(-anonymous data from two ver ... 

Keywords: Anonymity, Privacy, Security 



65 Cr y ptogra phic verification of test coverage claims 

Prem Devanbu, Stuart G. Stubblebine 
N/ November 1997 ACM SIGSOFT Software Engineering Notes , Proceedings of the 6th 
European conference held jointly with the 5th ACM SIGSOFT 
international symposium on Foundations of software engineering 
ESEC '97/FSE-5, Volume 22 Issue 6 
Publisher: Springer-Verlag New York, Inc., ACM Press 

Full text available: ^|pdf (1.67 MB) Additional Information: full citation , references , citin gs, index terms 



66 Authentication: Identity certified authentication for ad-hoc networks 
Andre Weimerskirch, Dirk Westhoff 

>^ October 2003 Proceedings of the 1st ACM workshop on Security of ad hoc and sensor 
networks SASN '03 
Publisher: ACM Press 

Full text available- 151 odf(160 86 KB) Add ^ onal Information: full citation , abstract , references , citings , index 

: terms 

Ad-hoc networks face huge security lacks. In the most general case entities need to build 
up a well-defined security association without any pre-established secret or common 
security infrastructure. In previous work we presented a protocol which provides a weak 
form of authentication that we call zero common-knowledge (ZCK) authentication. The 
protocol is extremely efficient and only requires symmetric primitives but does not provide 
identification. In this work we extend this approach in such a ... 

Keywords: ad-hoc networks, authentication, identification, key-chains, security 

67 Dele g ation logic: A lo g ic-based a p proach to distributed authorization 
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum 
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^ February 2003 ACM Transactions on Information and System Security (TISSEC), volume 

6 Issue 1 

Publisher: ACM Press 

Full text available- fH pdf(316 24 KB) Additional Information: full citation , abstract , references , citings, index 
■™ p : terms 

We address the problem of authorization in large-scale, open, distributed systems. 
Authorization decisions are needed in electronic commerce, mobile-code execution, remote 
resource sharing, privacy protection, and many other applications. We adopt the trust- 
management approach, in which "authorization" is viewed as a "proof-of-compliance" 
problem: Does a set of credentials prove that a request complies with a policy?We develop 
a logic-based language, called Delegation Logic (DL), t ... 

Keywords: Access control, Delegation Logic, distributed system security, logic programs, 
trust management 



68 Untraceability in mobile networks Q 
Didier Samfat, Refik Molva, N. Asokan 

December 1995 Proceedings of the 1st annual international conference on Mobile 
computing and networking MobiCom '95 

Publisher: ACM Press 

Full text available: ^ pdf(1.20 MB) Additional Information: full citation , references , cited by . index terms 




Keywords: CDPD, GSM, alias, anonymity, authentication, location privacy, mobility, 
security 



69 Role-based access control on the web 
Joon S. Park, Ravi Sandhu, Gail-Joon Ahn 

February 2001 ACM Transactions on Information and System Security (TISSEC), volume 

4 Issue 1 
Publisher: ACM Press 



Full text available: gpdf(331 .03 KB) 



Additional Information: full citation , abstract , references , citing s, index 
terms , review - 



Current approaches to access control on the Web servers do not scale to enterprise-wide 
systems because they are mostly based on individual user identities. Hence we were 
motivated by the need to manage and enforce the strong and efficient RBAC access 
control technology in large-scale Web environments. To satisfy this requirement, we 
identify two different architectures for RBAC on the Web, called user-pull and server-pull. 
To demonstrate feasibility, we im ... 

Keywords: WWW security, cookies, digital certificates, role-based access control 



70 DIM security and authentication: An authentication method for interaction between 
personal servers based on the exchan g e of addresses 
Akinori Shiraga, Tsuyoshi Abe, Masahisa Kawashima 

November 2005 Proceedings of the 2005 workshop on Digital identity management 
DIM '05 

Publisher: ACM Press 

Full text available: ^ pdf(523.20 KB) Additional Information: full citation , abstract , references , index terms 

The sharing of information held on personal servers is becoming widespread, as 
represented by Weblogs, SNS, etc. In this situation, it is necessary for each personal 
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server to authenticate users autonomously without any special conditions for the site to 
which they belong. In this paper, we propose an authentication method for interaction 
between personal servers. The proposal introduces a new method, which involves 
retrieving a public key based on the prior exchange of addresses. It requires no ... 

Keywords: P2P, authentication, certificate 



71 Sensors and networking: Optimizin g BGP security by exploiting path stability Q 




Kevin Butler, Patrick McDaniel, William Aiello 
October 2006 Proceedings of the 13th ACM conference on Computer and 



communications security CCS '06 
Publisher: ACM Press 

Full text available: ^| pdf(411.54 KB) Additional Information: full citation , abstract , references, index terms 

The Border Gateway Protocol (BGP) is the de facto interdomain routing protocol on the 
Internet. While the serious vulnerabilities of BGP are well known, no security solution has 
been widely deployed. The lack of adoption is largely caused by a failure to find a balance 
between deployability, cost, and security. In this paper, we consider the design and 
performance of BGP path authentication constructions that limit resource costs by 
exploiting route stability. Based on a year-long study of BGP t ... 

Keywords: BGP, path stability, routing, security 



72 Enforcin g coo perative resource sharin g in untrusted P2P computin g environments Q 
Zhengqiang Liang, Weisong Shi 

December 2005 Mobile Networks and Applications, Volume 10 Issue 6 
Publisher: Kluwer Academic Publishers 

Full text available: ^| pdf(436,36 KB) Additional Information: full citation , abstract , references , index term s 

Peer-to-Peer (P2P) computing is widely recognized as a promising paradigm for building 
next generation distributed applications. However, the autonomous, heterogeneous, and 
decentralized nature of participating peers introduces the following challenge for resource 
staring: how to make peers profitable in the untrusted P2P environment? To address the 
problem, we present a self-policing and distributed approach by combining two models: 
PET, a personalized trust model, and M-CUBE, a multiple-curren ... 

Keywords: P2P, cooperative, economic model, heterogeneous, resource sharing, trust 
model, untrusted environment 



73 Discovering relations among named entities from large corpora 
Takaaki Hasegawa, Satoshi Sekine, Ralph Grishman 

July 2004 Proceedings of the 42nd Annual Meeting on Association for Computational 
Linguistics ACL '04 

Publisher: Association for Computational Linguistics 

Full text available: ^ pdf(243.96 KB ) Additional Information: full citation , abstract , references 

Discovering the significant relations embedded in documents would be very useful not only 
for information retrieval but also for question answering and summarization. Prior methods 
for relation discovery, however, needed large annotated corpora which cost a great deal of 
time and effort. We propose an unsupervised method for relation discovery from large 
corpora. The key idea is clustering pairs of named entities according to the similarity of 
context words intervening between the named entities ... 

74 Im proved proxy re-encryption schemes with applications to secure distributed storag e 
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Giuseppe Ateniese, Kevin Fu, Matthew Green, Susan Hohenberger 

February 2006 ACM Transactions on Information and System Security (TISSEC), volume 

9 Issue 1 
Publisher: ACM Press 

Full text available: ^ pdf(331.59 KB ) Additional Information: full citation , abstract , references , index terms 

In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy 
re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a 
ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure 
re-encryption will become increasingly popular as a method for managing encrypted file 
systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption 
has been hindered by considerable security risks. ... 

Keywords: Proxy re-encryption, bilinear maps, double decryption, key translation 



75 Access control: SecureBus: towards applicatio n-tran sparent trusted computing with Q 
mandatory access control 

Xinwen Zhang, Michael J. Covington, Songqing Chen, Ravi Sandhu 

March 2007 Proceedings of the 2nd ACM symposium on Information, computer and 
communications security ASIACCS '07 

Publisher: ACM Press 

Full text available: ^| pdf(1 54.95 KB) Additional Information: full citation , abstract , references , index terms 

The increasing number of software-based attacks has attracted substantial efforts to 
prevent applications from malicious interference. For example, Trusted Computing (TC) 
technologies have been recently proposed to provide strong isolation on application 
platforms. On the other hand, today pervasively available computing cycles and data 
resources have enabled various distributed applications that require collaboration among 
different application processes. These two conflicting trends grow in ... 

Keywords: SecureBus, mandatory access control, secure platform, trusted computing 




76 Public infra structures for int ernet access in metropolitan area s 

Elias C. Efstathiou, Fotios A. Elianos, Pantelis A. Frangoudis, Vasileios P. Kemerlis, Dimitrios 
C. Paraskevaidis, Eleftherios C. Stefanis, George C. Polyzos 

September 2006 Proceedings of the 1st international conference on Access networks 
AcessNets '06 

Publisher: ACM Press 

Full text available: ^ pdfd 29.47 KB) Additional Information: full citation , abstract , references , index terms 

Wireless Community Networks (WCIMs) are metropolitan-area networks with nodes owned 
and managed by volunteers. These networks can be used to build large scale public 
infrastructures for providing ubiquitous wireless broadband access through the private 
contributions of individual community members who use their hotspots to forward foreign 
traffic from and to nearby low-mobility users, We have designed and developed a 
prototype aggregation scheme that (1) assumes that community members are selfish ... 

Keywords: WiFi networks, community networks, incentives, peer-to-peer, secure VoIP, 
security 





77 Cryptog raphy: Proxy re-signatures: new definitions, algorithms, and applications 
Giuseppe Ateniese, Susan Hohenberger 

November 2005 Proceedings of the 12th ACM conference on Computer and 
communications security CCS '05 
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Publisher: ACM Press 

Full text available: pdf(225.25 KB) Additional Information: full citation , abstract , references , index terms 

In 1998, Blaze, Bleumer, and Strauss (BBS) proposed proxy re-signatures, in which a 
semi-trusted proxy acts as a translator between Alice and Bob. To translate, the proxy 
converts a signature from Alice into a signature from Bob on the same message. The 
proxy, however, does not learn any signing key and cannot sign arbitrary messages on 
behalf of either Alice or Bob. Since the BBS proposal, the proxy re-signature primitive has 
been largely ignored, but we show that it is a very use ... 

Keywords: authenticating path in network, bilinear maps, proxy re-signature 



78 Ap plied cryptograph y 11: Multi- sig natures in the plain public-Key mod el and a general Q 
forking lemma 
Mihir Bellare, Gregory Neven 

October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS '06 
Publisher: ACM Press 

Full text available: ^ pdf(279.93 KB) Additional Information: full citation, ab stra ct, references, i ndex terms 

A multi-signature scheme enables a group of signers to produce a compact, joint signature 
on a common document, and has many potential uses. However, existing schemes impose 
key setup or PKI requirements that make them impractical, such as requiring a dedicated, 
distributed key generation protocol amongst potential signers, or assuming strong, 
concurrent zero-knowledge proofs of knowledge of secret keys done to the CA at key 
registration. These requirements limit the use of the schemes. We provi ... 

Keywords: cryptography, digital signatures, forking lemma, multi-signatures 




79 Research track pa per: Ano nymity- preservin g data collectio n 
^ Zhiqiang Yang, Sheng Zhong, Rebecca N. Wright 

v August 2005 Proceeding of the eleventh ACM SIGKDD international conference on 
Knowledge discovery in data mining KDD '05 
Publisher: ACM Press 

Full text available- H pdf(817 67 KB ) Additional Information: full citation , abstract, references, citings, index 
^ terms 

Protection of privacy has become an important problem in data mining. In particular, 
individuals have become increasingly unwilling to share their data, frequently resulting in 
individuals either refusing to share their data or providing incorrect data. In turn, such 
problems in data collection can affect the success of data mining, which relies on sufficient 
amounts of accurate data in order to produce meaningful results. Random perturbation 
and randomized response techniques can provide some I ... 

Keywords: anonymity, data collection, data mining 



80 Consistency enforcement and secure grids: Mesh: secure, li ghtweight grid 

middleware usin g existin g SSH infrastructure 
^ Paul Z. Kolano 

June 2007 Proceedings of the 12th ACM symposium on Access control models and 

technologies SACMAT '07 
Publisher: ACM Press 

Full text available: ^ pdfd 78.90 KB) Additional Information: full citation , abstract , references , index terms 
Grid computing promises gains in effective computational power, resource utilization, and 
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resource accessibility, but in order to achieve these gains, organizations must deploy grid 
middleware that, in most cases, does not adhere to fundamental security principles. This 
paper introduces a new lightweight grid middleware called Mesh, which is based on the 
addition of a single sign-on capability to the built-in public key authentication mechanism 
of SSH using system call interposition. The init ... 

Keywords: SSH, access control, authentication, authorization, delegation, distributed 
systems, grids, middleware, security, single sign-on 
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81 QUIP; a protocol for securin g content in peer-to-p eer publish/subscribe overla y 
networks 

Amy Beth Corman, Peter Schachte, Vanessa Teague 

January 2007 Proceedings of the thirtieth Australasian conference on Computer 
science - Volume 62 ACSC '07 

Publisher: Australian Computer Society, Inc. 

Full text available:^ pdfd 92.93 KB ) Additional Information: full citation , abstract , references 

Publish/subscribe networks provide an interface for publishers to perform many-to-many 
communication to subscribers without the inefficiencies of broadcasting. Each subscriber 
submits a description of the sort of content they are interested in, then the 
publish/subscribe system delivers any appropriate messages as they are published. 
Although publish/subscribe networks offer advantages over traditional web-based content 
delivery, they also introduce security issues. The two security problems ... 

Keywords: network protocol, peer-to-peer, publish/subscribe, security 



82 



DRM usability and le g al issues: Import/export in digital rights management 
Reihaneh Safavi-Naini, Nicholas Paul Sheppard, Takeyuki Uehara 

October 2004 Proceedings of the 4th ACM workshop on Digital rights management 
DRM '04 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 
terms 



Full text available:^ pdf( 21 1.60 KB ) 



The inherently controlled nature of digital rights management systems does little to 
promote inter-operability of systems provided by different vendors. In this paper, we 
consider import and export functionality by which multimedia protected by one digital 
rights management regime can be made available to a multimedia device that supports a 
different digital rights management regime, without compromising the protection afforded 
to the content under the original regime. We first identify sped ... 

Keywords: digital rights management, export, import, inter-operability 



83 RFID & watermarking: Protecting RFID communications in supply chains 
Yingjiu Li, Xuhua Ding 
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March 2007 Proceedings of the 2nd ACM symposium on Information, computer and 
communications security ASIACCS '07 

Publisher: ACM Press 

Full text available: ^] pdf ( 1 60.66 KB) Additional Information: full citation , abstract , references , index terms 

Recent years have seen much growing attention on RFID security. However, little work has 
been performed to address the security issues in the context of supply chain management, 
which is exactly the major field for RFID applications. Existing RFID solutions cannot be 
applied directly in this field because of a set of special RFID security requirements to be 
addressed for supply chain management. The major contribution of this paper is to identify 
the unique set of security requirements in sup ... 

Keywords: RFID, information security, supply chain 



84 Periodical pa yment model usin g restricted proxy certificates 
Grigori Goldman 

January 2007 Proceedings of the thirtieth Australasian conference on Computer 

science - Volume 62 ACSC '07 
Publisher: Australian Computer Society, Inc. 

Full text available: ^ pdf( 176.38 KB) Additional Information: full citation , abstract , references , 

In this paper we shall introduce a new electronic payment concept based on the popular 
direct debit payment model, entitled periodical payments. The direct debit model currently 
in use online is neither secure nor flexible, and requires a leap of faith by the customer 
who must trust the merchant to behave honestly. Electronic direct debit request (DDR) 
forms are not signed by both parties in a binding manner, which means that merchants 
can change the terms of DDR agreements post-fact. Unsigne ... 

Keywords: direct debit, e-commerce, payment, periodical 



85 Curricular basics and trends: Computational concepts in IT: a new approach to IT j 
<gy mathemati cs 

" Soleda T. Leung, Christopher Johnson 

October 2005 Proceedings of the 6th conference on Information technology education 
SIGITE 05 

Publisher: ACM Press 

Full text available: ^ pdf ( 87.02 KB ) Additional Information: full citation , abstract , references , index terms 

Mathematics has always been extensively included in computing curricula. The latest draft 
of IT Volume recommends a fair amount of mathematics as well. Our question has never 
been whether mathematics should be taught in computing disciplines; but rather, how to 
teach mathematical topics effectively so as to provide this crucial foundation for our IT 
majors. In many cases, mathematics courses provided by institutions are taught by 
mathematics faculty from a pure mathematical view point. The burde ... 

Keywords: algorithm, algorithm design, application, approximation, curriculum design, 
graph theory, information technology, mathematics, number theory 



86 Techniques for trusted software en g ineering 

PremkumarT. Devanbu, Philip W-L Fong, Stuart G. Stubblebine 

April 1998 Proceedings of the 20th international conference on Software engineering 
ICSE 98 

Publisher: IEEE Computer Society 

Full text available: 
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87 The architecture of robust publishing systems 
Marc Waldman, Aviel D. Rubin, Lorrie Faith Cranor 

November 2001 ACM Transactions on Internet Technology (TOIT), volume l issue 2 
Publisher: ACM Press 

Full text available: ^|pdf( 68Q.21 KB) Additional Information: full citation , abstract , references , index terms 

The Internet in its present form does not protect content from censorship. It is 
straightforward to trace any document back to a specific Web server, and usually directly 
to an individual. As we discuss below, there are valid reasons for publishing a document in 
a censorship-resistant manner. Unfortunately, few tools exist that facilitate this form of 
publishing. We describe the architecture of robust systems for publishing content on the 
Web. The discussion is in the context of Publius, as that ... 

Keywords: Censorship resistance, Web publishing 



88 Securing the global remote, mobile user 
Walt Curtis, Lori Sinton 

March 1999 International Journal of Network Management volume 9 issue l 
Publisher: John Wiley & Sons, Inc. 

Full text available: |^ pdf(982.14 KB ) Additional Information: full citation , ab stract , index terms 

Electronic commerce is inevitable and will reshape our lives, but before true electronic 
commerce environments can be realized, it will be necessary to secure your enterprise 
against outside attacks on its electronic information and provide controls for authorized 
access to that information. Copyright © 1999 John Wiley & Sons, Ltd. 

89 Technical pa per session 3: c ryptogra phy and storage: Non-volatile memory and 

disks:: avenues for policy architectures 
Kevin R. B. Butler, Stephen E. McLaughlin, Patrick D. McDaniel 
November 2007 Proceedings of the 2007 ACM workshop on Computer security 
architecture CSAW 07 

Publisher: ACM 

Full text available: ^ pdf(38272 KB) Additional Information: full citation , abstract , references , index terms 

As computing models change, so too do the demands on storage. Distributed and 
virtualized systems introduce new vulnerabilities, assumptions, and performance 
requirements on disks. However,traditional storage systems have very limited capacity to 
implement needed "advanced storage" features such as integrity and dataisolation. This is 
largely due to the simple interfaces and limited computing resources provided by 
commodity hard-drives. A new generation of storage devices affords better oppor ... 

Keywords: NVRAM, labels, security, storage 



90 A comprehensive service discovery solution for mobile ad hoc networks 
Jerry Tyan, Qusay H. Mahmoud 

August 2005 Mobile Networks and Applications, volume 10 issue 4 
Publisher: Kluwer Academic Publishers 

Full text available: ^| pdf(2.03 MB) Additional Information: full citation , abstract , references , index terms 
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Service discovery is an integral part of constructing self-configuring Mobile Ad Hoc 
Networks (MANETs). While several service discovery protocols have been developed, most 
of them are designed for infrastructure-based networks and thus not suitable to be used in 
MANETs. Due the volatile nature of MANET, service discovery protocols designed for 
MANETs often suffer from problems. Firstly, they have limited scalability due to the 
extensive use of broadcast communication. Secondly, they usually lack ... 

Keywords: Hexell, MANETs, routing, service discovery, service interaction, service 
selection 



91 Trustworthy Web sites: An abuse-free fair contract signin g protocol based on the Q 

^ RSA signature 
Guilin Wang 

May 2005 Proceedings of the 14th international conference on World Wide Web 
WWW '05 

Publisher: ACM Press 

Full text available: 1 ^ pdfd 98.83 KB) Additional Information: full citation , abstract , references , index terms 

A fair contract signing protocol allows two potentially mistrusted parities to exchange their 
commitments (i.e., digital signatures) to an agreed contract over the Internet in a fair 
way, so that either each of them obtains the other's signature, or neither party does. 
Based on the RSA signature scheme, a new digital contract signing protocol is proposed in 
this paper. Like the existing RSA-based solutions for the same problem, our protocol is not 
only fair, but also optimistic, since the third ... 

Keywords: RSA, contract signing, cryptographic protocols, digital signatures, e- 
commerce, fair-exchange, security 



92 Architecture and implementation: On implementing mpeg-21 intellectual property 
mana g ement and protection 
Nicholas Paul Sheppard 

October 2007 Proceedings of the 2007 ACM workshop on Digital Rights Management 
DRM '07 

Publisher: ACM 

Full text available: ^ pdf(229.76 KB) Additional Information: full citation , abstract , references , index terms 

The MPEG-21 Intellectual Property Management and Protection ("IPMP") Components 
specify a framework for inter-operable and renewable digital rights management based on 
IPMP tools that implement proprietary digital rights management features. MPEG-21 
defines the mechanism by which protected multimedia objects are associated with 
proprietary IPMP tools, but does not specify the interface through which IPMP tools and 
MPEG-21 terminals communicate.This paper describes an implementation of ... 

Keywords: MPEG REL, MPEG-21 IPMP, digital rights management, implementation 



93 Public-key su pport for group collaboration 
Carl Ellison, Steve Dohrmann 

November 2003 ACM Transactions on Information and System Security (TISSEC), 

Volume 6 Issue 4 
Publisher: ACM Press 

Full text available: ^ pdf (561.61 KB) Additional Information: full citation , abstract , references , index terms 

This paper characterizes the security of group collaboration as being a product not merely 
of cryptographic algorithms and coding practices, but also of the man-machine process of 
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group creation. We show that traditional security mechanisms do not properly address the 
needs of a secured collaboration and present a research prototype, called NGC (next 
generation collaboration), that was designed to meet those needs. NGC distinguishes itself 
in the care with which the man-machine process was analy ... 
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1995-12-01 IPCOM000117036D Em 

Disclosed is a method in which nodes are dynamically provided network management s 
computer network resources. 



Result # 2 Relevance: Q 

Transformation of UML diagrams to text in natural language. 

2005-10-20 IPCOM000130330D Em. 

Actually, Unified Modeling Language (UML) is the formal language generally adopted to 
specify, construct, and document the artifacts of a software system. Several tools are a 
market to support software engineers in building UML diagrams. In some ... 



Result # 3 Relevance: © 

Attachment Support by Differentiators 

2007-04-02 IPCOM000149656D Em 

The Attachment Support by Differentiators design is to enhance and provide the capabi 
associating similar supplementary parts to a Commerce business object as a single atta 
thereby reducing the total cost of implementation and maintenance. By identifying ... 



Result # 4 Relevance: © 

Generic Knowledge Base Acquisition And Specification 

1991-08-01 IPCOM000121338D Em 

Disclosed is an approach to gather information for a knowledge database in a concise a 
manner with clear relationships and meanings established for the data. This database c 
constant data and relationships, for the use of this data, in a set of tables ... 



Result # 5 Relevance: © 

Relationships: Improved Integrity for Relational-Based Computer Aid< 
Design/Computer Aided Manufacturing/Geographic Information Syst 

1996-12-01 IPCOM000U8355D Em 

Disclosed is a method for modeling complicated real world relationships in Geographic ] 
Systems. The solution is an application of the entity-relationship model to the instance 
relational database system. It provides robust insertion, update, and ... 



Result # 6 Relevance: © 

Enforcement of object model subsetting rules through the use of trigc 
referential integrity constraints, and additional columns within a relat 
database schema. 

2003-09-12 IPCOM000019360D Em 

Disclosed is a system for designing relational databases such that the subsetting rules < 
application's object model can be enforced by the db2 database engine without the nee 
application to execute rules checking routines. Avoidance of rules checking by the ... 
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Self Assembling Hierarchical Index for P2P Network 

2002-06-13 IPCOM000015440D Em 
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Self Assembling Hierarchical Index for P2P Network Self Assembling Hierarchical Index 
Network This concept solves the problem of how to build and maintain a distributed ind 
or authorized documents, files, data, programs etc. contained in a distributed ... 



Result # 8 Relevance: Q 

A Relational Schema to Support Task and Workflow, Data Collection a 

1999-10-01 IPCOM000013323D Em 

A design of a relational data model that can be used to store task data is disclosed. The 
data model is optimized for retrieval of task data therefrom and is extendible to add ne 
task data. Each task artifact is stored with a unique identity and any view ... 



Result # 9 Relevance: iQ 

Simple Mail Transfer Protocol (RFC2821) 

2001-04-01 IPCOM000004999D Em 

This document is a self-contained specification of the basic protocol for the Internet ele 
transport. It consolidates, updates and clarifies, but doesn't add new or change existinc 
of the following: 



Result # 10 Relevance: 0 

Techniques for Estimation of the Area of Integrated Digital Circuits 

1983-01-31 IPCOM000151634D Em 

A dissertation submitted in partial fulfillmentof the requirements for the degree of Doct< 
Philosophy(Computer, Information, and Control Engineering) in The University of Michic 
Doctoral Committee: Professor Daniel Atkins, Chairman Professor Keki ... 
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Result # 1 Relevance: O©0OO 

Bipolar Transistor Processing for Circuit Analysis and Design 

1975-03-01 IPCOM000083078D Eni 

This description relates to a convenient and efficient scheme for the processing of bipol 
transistors. Two intrinsic models can be implemented as a basic building block for bipol 
models. The circuit diagram for the two models is the same as shown in ... 

Result # 2 Relevance: OOO 

A CONSTRUCTIVE METHOD FOR GRAMMATICAL INFERENCE BASED OIS 
CLUSTERING 

1977-04-30 IPCOM000148995D En» 

A CONSTRUCTIVE METHOD FOR GRAMMATICAL INFERENCE BASED ON CLUSTERING* I 
supported in part by National Science Foundation Grant ENG 76-11936 Jiunn-I Liou anc 
Dubes Department of Computer Science Michigan State UniversityEast Lansing, Michigc 
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Results 1 - 9 of 9 for +key-pair +Mnk + relationship ^'' junction table ". (0.26 seconds) 



Tip: Save time by hitting the return key instead of clicking on "search" 
Please critique my little db 

The only relationship that I have set up right now is the one between the to apply that 

to the physicals where I created a junction table to link the ... 

www.utteraccessxom/forums/printthread.php?Cat=&Board=8&main=1058055&type=thread 

- 37k - Cached - Similar pages 

Utter Access Discussion Forums - Please critique my little db 

The only relationship that I have set up right now is the one between the .... You need a 

junction table to record each instance of each physical taken by ... 

www.utteraccess.com/forums/showflat.php?Cat=& 

Number=1058055&page=&view=&sb=5&o=&f... - 55k - Cached - Similar pages 
[ More results from ww w .utteraccess .com ] 

PDR Management Institute 

... use a junction table to create a many-to-many relationship between two .... to generate 
an RSA key pair, and to declare a CA. configure CA support on a ... 
www.pdrmi.com/knowhow_list.php?pagenum=1 14&bolum=skillsoft&cat= - 96k - 
C ached - Si milar p ages 

IBM Tivoli Access Manager WebSEAL Messages 

0x38983145 (949498181), reloads the junction table from the database Action: Check 

authentication relationship between Access Manager and junctioned ... 
publib.boulder.ibm.com/tividd/td/ITAME/SC32-0845-00/en_US/HTML/am39_error_ref06.htm 

- 639k - Cached - Similar pages 

[pdf] IBM Tivoli Access Manager: Error Message Reference 

File Format: PDF/Adobe Acrobat 

0x38983145 (949498181) reloads the junction table, from the database link is used 

to indicate that a particular element of the ... 

publib.boulder.ibm.com/tividd/td/ITAME/SC32-0845-00/en_US/PDF/am39_error_ref.pdf- 
Similar pages 

[ More results from publib.boulder.ibm.com 1 
ADO. Net « prabhat.net 

One-to-One relationship can be implemented as a single table and rarely as ... Many-to- 
Many relationships are implemented using a junction table with the ... 
prabhat007.blog.com/ADO.Net/ - 788k - Cached - Similar pages 

Questions « prabhat.net 

Questions .NET = its an Environment for developing Windows & Web applications, services 
and components using multiple Programming Languages. ... 
prabhat007.blog.com/1080903/ - 250k - Cached, - Simjar .pages 

[odf] Hjt JE1I4 3 jt abort abstract class jfl^Hjj'J abstract ... 
File Format: OpenDocument - View as HTML 

manual link. ^fiilSt manufacture. ; many-to-many relationship. f>%Hr 

MIS. map. Wk ; H ; ft£t. map file. SRftK. map network. fJffiMSSS- ... 
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1topenfoundry.org/Found17/Project/Download/Attachm 
- Similar pages 

M^lk^M^jM - 1 Translate this page ] 

e Customer Relationship Management (eCRM) fc^ flSWj^JMtS junction table K 

* ®L&% junk mail Kl&flft 1 Jusk-Link Jusk-Link^^ft^ justify M^r ... 
www.fane.cn/upload/dictionary/computer_networkTXT - 703k - Cached - Similar pages 

In order to show you the most relevant results, we have omitted some entries very similar to 
the 9 already displayed. 

If you like, you can repeat the search with the omitted results included . 
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Tip: Save time by hitting the return key instead of clicking on "search" 
Access 97 Expert Solutions - Chapter 10 

If there is a many-to-many relationship between your data items, or SELECT INTO in 

the SQL string to place the chosen ID values in a temporary table, ... 

c85.cemi.rssi.ru/Access/Books/A97ExSol/index10.htm - 194k - Cached - Similar pages 

Documentation de Perl 5.6.1 

Establish IS-A relationship with base class at compile time A many to many relation 

between two tabels DBIx::HTMLView::N20ne ... 

perLenstimac.fr/perl5.6.1/frame-index.html - 560k - Cached - Similar pages 

[pdf] Information Systems Lecture Notes 

File Format: PDF/Adobe Acrobat - View as HTML 

A typical Many-to-Many relationship would be the one between students, and courses: A 
student can take many courses and a course can be attended by ... 

www.risc.uni-linz.ac.at/education/courses/ws2007/is/ln.pdf - Si mila r pages 

jjKj^g^ 2002) - [ Translate this page ] 

(2,7)^||(2,7) code; ±1^(2 J)fmfcMfS5*T • 0 M£>£||0-type grammar 0S@W||type 0 
language 1 S£}£||1-type grammar 1/43$ ^^Sfl&^Hquarter inch ... 
hk.netsh.com/bbs/7944/html/table_20089783.html - 250k - Cached - Similar pages 

[pdf] Bookshelf v7.0: Security Guide for Siebel eBusiness Applications 
File Format: PDF/Adobe Acrobat 

specifying an intersection table (in the case of a many-to-many relationship). This multi- 
value link's Destination Link property indicates which link ... 

download.oracle.com/docs/cd/E05555_01/PDFFiles/704updates/Secur.pdf - Similar pages 

[pdf] Siebel Security Guide 
File Format: PDF/Adobe Acrobat 

intersection table (in the case of a many-to-many relationship). This multivalue link's 
Destination. Link property indicates which link ultimately defines ... 
download.oracle.com/docs/cd/B40099_02/books/PDF/Secur.pdf - Similar p ages 

Oracle Database 10g OCP Certification Parti 

Put in terms of relational analysis, there is a many-to-many relationship between 
segments and datafiles: one table may be cut across many datafiles; ... 
www.scribd.com/doc/501866/Oracle-Database-10g-OCP-Certification-Part1 - 608k - 
Cached - Similar pages 

i am a little confused I am setting up a table with phpmyadmin and ... 

I have a table of books, a table of authors, and a table containing books ids and authors ids 

to reference books with authors in a many to many relationship ... 

www.oxxus.net/help/little-confused-setting-table-phpmyadmin/index.php - 90k - 
Cached - Similar pages 

[pdf] Replication and Synchronization Guide 
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many-to-many relationship between the table and the remote databases and 

uploading rows into a temporary table and inserting them into a base ... 

downtoad.sybase.com/pdfdocs/awg0702e/dbrsen7.pdf - Similar pages 

[pdf] MobiLink Synchronization User's Guide 
File Format: PDF/Adobe Acrobat 

there is a many-to-many relationship between the table and the remote .... a temporary 
table named #hook_dict, with the following contents: ... 

www.ianywhere.com/developer/product_manuals/sqlanywhere/0901/en/pdf/dbmlen9.pdf- 
Similar pages 
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